createconfig

package

Go to main page

Versions in this module

v2

v2.0.6

Sep 1, 2020

v2.0.6-rc1

Aug 28, 2020 GO-2023-1544

GO-2023-1544: Podman has Files or Directories Accessible to External Parties in github.com/containers/libpod

v2.0.5

Aug 24, 2020 GO-2023-1544

GO-2023-1544: Podman has Files or Directories Accessible to External Parties in github.com/containers/libpod

v2.0.4

Jul 31, 2020 GO-2023-1544 +1 more

GO-2023-1544: Podman has Files or Directories Accessible to External Parties in github.com/containers/libpod

GO-2024-2766: Information disclosure in podman in github.com/containers/libpod

v2.0.3

Jul 23, 2020 GO-2023-1544 +1 more

GO-2023-1544: Podman has Files or Directories Accessible to External Parties in github.com/containers/libpod

GO-2024-2766: Information disclosure in podman in github.com/containers/libpod

v2.0.2

Jul 7, 2020 GO-2023-1544 +1 more

GO-2023-1544: Podman has Files or Directories Accessible to External Parties in github.com/containers/libpod

GO-2024-2766: Information disclosure in podman in github.com/containers/libpod

Changes in this version

+ const CpuPeriod

+ const DefaultKernelNamespaces

+ const Pod

+ const TypeBind

+ const TypeTmpfs

+ const TypeVolume

+ func AddPrivilegedDevices(g *generate.Generator) error

+ func BlockAccessToKernelFilesystems(privileged, pidModeIsHost bool, g *generate.Generator)

+ func CreateContainerFromCreateConfig(ctx context.Context, r *libpod.Runtime, createConfig *CreateConfig, ...) (*libpod.Container, error)

+ func CreatePortBinding(hostPort int, hostIP string) []nat.PortBinding

+ func Device(d *configs.Device) spec.LinuxDevice — linux/amd64

+ func DevicesFromPath(g *generate.Generator, devicePath string) error

+ func ExposedPorts(expose, publish []string, publishAll bool, ...) (map[nat.Port][]nat.PortBinding, error)

+ func GetAvailableGids() (int64, error)

+ func GetStatFromPath(path string) (unix.Stat_t, error) — linux/amd64

+ func InitFSMounts(mounts []spec.Mount) error

+ func IsNS(s string) bool

+ func IsPod(s string) bool

+ func IsValidDeviceMode(mode string) bool

+ func NS(s string) string

+ func NatToOCIPortBindings(ports nat.PortMap) ([]ocicni.PortMapping, error)

+ func ParseDevice(device string) (string, string, string, error)

+ func SupercedeUserMounts(mounts []spec.Mount, configMount []spec.Mount) []spec.Mount

+ func Valid(s string, ns LinuxNS) bool

+ func ValidateweightDevice(val string) (*weightDevice, error)

+ type CgroupConfig struct

+ CgroupMode namespaces.CgroupMode

+ CgroupParent string

+ Cgroupns string

+ Cgroups string

+ func (c *CgroupConfig) ConfigureGenerator(g *generate.Generator) error

+ func (c *CgroupConfig) ToCreateOptions(runtime *libpod.Runtime) ([]libpod.CtrCreateOption, error)

+ type CreateConfig struct

+ Annotations map[string]string

+ Args []string

+ BuiltinImgVolumes map[string]struct{}

+ Cgroup CgroupConfig

+ CidFile string

+ Command []string

+ ConmonPidFile string

+ Detach bool

+ Devices []string

+ Entrypoint []string

+ Env map[string]string

+ HealthCheck *manifest.Schema2HealthConfig

+ Image string

+ ImageID string

+ ImageVolumeType string

+ Init bool

+ InitPath string

+ Interactive bool

+ Ipc IpcConfig

+ Labels map[string]string

+ LogDriver string

+ LogDriverOpt []string

+ Mounts []spec.Mount

+ MountsFlag []string

+ Name string

+ NamedVolumes []*libpod.ContainerNamedVolume

+ Network NetworkConfig

+ Pid PidConfig

+ Pod string

+ PodmanPath string

+ Quiet bool

+ RawImageName string

+ Resources CreateResourceConfig

+ RestartPolicy string

+ Rm bool

+ Rmi bool

+ Rootfs string

+ Security SecurityConfig

+ StopSignal syscall.Signal

+ StopTimeout uint

+ Syslog bool

+ Systemd bool

+ Tmpfs []string

+ Tty bool

+ User UserConfig

+ UserCommand []string

+ Uts UtsConfig

+ Volumes []string

+ VolumesFrom []string

+ WorkDir string

+ func (c *CreateConfig) CreateBlockIO() (*spec.LinuxBlockIO, error)

+ func (config *CreateConfig) MakeContainerConfig(runtime *libpod.Runtime, pod *libpod.Pod) (*spec.Spec, []libpod.CtrCreateOption, error)

+ type CreateResourceConfig struct

+ BlkioWeight uint16

+ BlkioWeightDevice []string

+ CPUPeriod uint64

+ CPUQuota int64

+ CPURtPeriod uint64

+ CPURtRuntime int64

+ CPUShares uint64

+ CPUs float64

+ CPUsetCPUs string

+ CPUsetMems string

+ DeviceCgroupRules []string

+ DeviceReadBps []string

+ DeviceReadIOps []string

+ DeviceWriteBps []string

+ DeviceWriteIOps []string

+ DisableOomKiller bool

+ KernelMemory int64

+ Memory int64

+ MemoryReservation int64

+ MemorySwap int64

+ MemorySwappiness int

+ OomScoreAdj int

+ PidsLimit int64

+ ShmSize int64

+ Ulimit []string

+ type IpcConfig struct

+ IpcMode namespaces.IpcMode

+ func (c *IpcConfig) ConfigureGenerator(g *generate.Generator) error

+ func (c *IpcConfig) ToCreateOptions(runtime *libpod.Runtime) ([]libpod.CtrCreateOption, error)

+ type LinuxNS interface

+ Valid func() bool

+ type NetworkConfig struct

+ DNSOpt []string

+ DNSSearch []string

+ DNSServers []string

+ ExposedPorts map[nat.Port]struct{}

+ HTTPProxy bool

+ IP6Address string

+ IPAddress string

+ LinkLocalIP []string

+ MacAddress string

+ NetMode namespaces.NetworkMode

+ Network string

+ NetworkAlias []string

+ PortBindings nat.PortMap

+ Publish []string

+ PublishAll bool

+ func (c *NetworkConfig) ConfigureGenerator(g *generate.Generator) error

+ func (c *NetworkConfig) ToCreateOptions(runtime *libpod.Runtime, userns *UserConfig) ([]libpod.CtrCreateOption, error)

+ type PidConfig struct

+ PidMode namespaces.PidMode

+ func (c *PidConfig) ConfigureGenerator(g *generate.Generator) error

+ func (c *PidConfig) ToCreateOptions(runtime *libpod.Runtime) ([]libpod.CtrCreateOption, error)

+ type SecurityConfig struct

+ ApparmorProfile string

+ CapAdd []string

+ CapDrop []string

+ CapRequired []string

+ LabelOpts []string

+ NoNewPrivs bool

+ Privileged bool

+ ReadOnlyRootfs bool

+ ReadOnlyTmpfs bool

+ SeccompPolicy seccomp.Policy

+ SeccompProfileFromImage string

+ SeccompProfilePath string

+ SecurityOpts []string

+ Sysctl map[string]string

+ func (c *SecurityConfig) ConfigureGenerator(g *generate.Generator, user *UserConfig) error

+ func (c *SecurityConfig) SetLabelOpts(runtime *libpod.Runtime, pidConfig *PidConfig, ipcConfig *IpcConfig) error

+ func (c *SecurityConfig) SetSecurityOpts(runtime *libpod.Runtime, securityOpts []string) error

+ func (c *SecurityConfig) ToCreateOptions() ([]libpod.CtrCreateOption, error)

+ type UserConfig struct

+ GroupAdd []string

+ IDMappings *storage.IDMappingOptions

+ User string

+ UsernsMode namespaces.UsernsMode

+ func (c *UserConfig) ConfigureGenerator(g *generate.Generator) error

+ func (c *UserConfig) InNS(isRootless bool) bool

+ func (c *UserConfig) ToCreateOptions(runtime *libpod.Runtime) ([]libpod.CtrCreateOption, error)

+ type UtsConfig struct

+ HostAdd []string

+ Hostname string

+ NoHosts bool

+ UtsMode namespaces.UTSMode

+ func (c *UtsConfig) ConfigureGenerator(g *generate.Generator, net *NetworkConfig, runtime *libpod.Runtime) error

+ func (c *UtsConfig) ToCreateOptions(runtime *libpod.Runtime, pod *libpod.Pod) ([]libpod.CtrCreateOption, error)

Other modules containing this package

github.com/containers/libpod

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL